On Tue, 11 Mar 2008, Brian May wrote:
This following command fixed things for me
ln -sf /etc/heimdal-kdc/kdc.conf /var/lib/heimdal-kdc/kdc.conf
The following code in the postinst script should have avoided that:
# if not configured, try moving existing configuration
if [ ! -f /etc/heimdal-kdc/.configured ] &&
[ -f /var/lib/heimdal-kdc/.configured ]
then
for i in kdc.conf kadmind.acl
do
if [ -f /var/lib/heimdal-kdc/$i ]
then
mv /var/lib/heimdal-kdc/$i /etc/heimdal-kdc/$i
fi
done
mv /var/lib/heimdal-kdc/.configured /etc/heimdal-kdc/.configured
fi
I don't know why it didn't work for you.
It may have worked, I don't have any conf files in /var/lib/heimdal-kdc
but, the problem is that kadmind is only looking for
/var/lib/heimdal-kdc/kdc.conf
not
/etc/heimdal-kdc/kdc.conf
from strace:
....
open("/var/lib/heimdal-kdc/kdc.conf", O_RDONLY)
....
Which is why I had to add the symlink - and why I had assumed a missing
patch to change location kadmind is using.
I didn't have this issue with the kdc, haven't yet tried kpasswd
It is possible that the log file and ACL file may not work though, without
the following changed at the top of kdc.conf:
[kdc]
log_file = FILE:/var/log/heimdal-kdc.log
acl_file = FILE:/etc/heimdal-kdc/kadmind.acl
Thanks, I'll add those settings, just to make sure I'm covered
I had forgotten at the time that kdc.conf is not a conffile (historic reasons
now, possibly should change that).
I know how that goes :(
--
Rick Nelson
<knghtbrd> Windoze CEMeNT: Now with CrackGuard(TM)! Never worry about
unsightly cracks in Windoze CEMeNT again! CrackGuard(TM) is
so powerful that the entire thing will crumble before it will
crack. Order your $200 upgrade version today!
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
